i 3 PRIVACY POLICY

PRIVACY POLICY

 

Effective Date: 02.02.2026

Website: https://aico.uz

Company: AILAB LLC (hereinafter — the “Company”)

TIN: 312 767 454

Registration No.: 3110877

 

1. PREAMBLE

1.1. AILAB LLC is dedicated to upholding the highest standards of data integrity and digital privacy. This Privacy Policy articulates the methods by which we collect, process, and safeguard personal and corporate data within the AICO digital ecosystem.

1.2. This Policy is drafted in strict compliance with the Law of the Republic of Uzbekistan No. ZRU-547 "On Personal Data", ensuring that the rights of Data Subjects are protected regardless of the technological medium employed.

 

2. SCOPE OF DATA COLLECTION

The Company collects distinct categories of information to facilitate elite service delivery:

  • Identifiable Information: Personal identifiers such as full names, corporate affiliations, email addresses, and telephonic coordinates provided voluntarily via digital forms.
  • Technical & Telemetry Data: Information automatically harvested through digital interactions, including IP addresses, browser fingerprints, device specifications, and operating system data.
  • Project & Proprietary Data: Confidential files, technical specifications, and strategic communications necessary for the execution of software development and design mandates.

 

3. PURPOSE AND LEGAL BASIS OF PROCESSING

3.1. Utilization: The Company processes data to orchestrate project workflows, personalize the digital experience, and—where explicit consent is granted—disseminate strategic updates and newsletters.

3.2. Legal Grounds: Our processing activities are grounded in:

  • Contractual Necessity: Fulfillment of service agreements and project deliverables.
  • Legal Compliance: Adherence to fiscal and regulatory obligations under Uzbek law.
  • Legitimate Interest: Continuous improvement of our AI algorithms and service infrastructure.

 

4. AI DATA ETHICS & PROCESSING

4.1. AI Processing: As an AI-focused entity, the Company may utilize data to refine internal algorithms. However, Client Proprietary Data is strictly siloed and is never used to train public or third-party AI models without express written consent.

4.2. Anonymization: Any data utilized for broad analytical purposes is rigorously anonymized to prevent the re-identification of any specific Data Subject.

 

5. DATA DISCLOSURE & THIRD PARTIES

5.1. The Company maintains a strict non-disclosure policy. We do not monetize or sell personal data.

5.2. Data may be shared strictly with:

  • Certified Processors: Hosting providers, analytics engines, and secure payment gateways compliant with PCI DSS standards.
  • Subcontractors: Vetted third-party specialists bound by non-disclosure agreements (NDAs).
  • Regulatory Bodies: Law enforcement agencies when compelled by a valid court order or legislative mandate.

6. FINANCIAL DATA SECURITY & PAYMENT PROCESSING

6.1. Secure Transmission: When utilizing bank cards for payment, the processing of sensitive financial data (including card numbers, CVV codes, and expiration dates) is conducted exclusively on the secure, certified pages of our payment processing partner.

6.2. Data Isolation: The Client acknowledges that confidential financial data does not enter the AICO internal ecosystem. It is encrypted and transmitted directly to the payment gateway's secure server. AICO employees and administrators do not have access to, nor do they store, full credit card details.

6.3. Compliance Standards: Our payment infrastructure strictly adheres to the Payment Card Industry Data Security Standard (PCI DSS), a global security protocol developed by Visa and MasterCard. This ensures that all cardholder information is handled with the highest level of banking security.

6.4. Encryption Protocols: Data transmission is protected using Transport Layer Security (TLS) encryption protocols. To prevent unauthorized access, transactions are authenticated via 3D-Secure technology, including Verified by Visa and Mastercard SecureCode.

6.5. Refund Security: In the event of a cancellation or reimbursement, funds are strictly returned to the original bank card or payment method used for the initial transaction. Transfers to third-party accounts or alternative cards are prohibited to prevent fraud.

7. RIGHTS OF THE DATA SUBJECT

Under the Law on Personal Data, users possess the following rights:

  • Right to Access: Request a copy of all personal data held by the Company.
  • Right to Rectification & Erasure: Demand the correction of inaccuracies or the permanent deletion of records ("Right to be Forgotten").
  • Right to Withdraw Consent: Revoke permission for marketing communications at any time.
  • Right to Recourse: File a complaint with the authorized state body for personal data protection.

 

8. INTERNATIONAL TRANSFERS

8.1. For Clients residing outside the Republic of Uzbekistan, data is transferred to and processed within Uzbekistan.

8.2. The Company ensures that cross-border transfers adhere to international adequacy standards for data protection.

 

9. CONTACT AND UPDATES

9.1. This Policy is subject to periodic review. Updates will be time-stamped with a "Last Updated" date.

9.2. Inquiries regarding data privacy should be directed to the Data Protection Officer at: info@aico.uz.